Bump github.com/open-policy-agent/opa from 1.13.2 to 1.15.0

[dependabot]

Bumps github.com/open-policy-agent/opa from 1.13.2 to 1.15.0.

Release notes

Sourced from github.com/open-policy-agent/opa's releases.

v1.15.0

This release contains a mix of new features, performance improvements, and bugfixes. Notably:

• Add logger plugin interface and file logger implementation with log rotation
• Custom HTTPAuthPlugin behavior change, all per-request authentication logic must be moved from NewClient() to Prepare()
• AWS signing supports for web identity for assume role credentials

Logger Plugin Support (#8434) (authored by @​srenatus)

OPA now supports pluggable logging implementations via the logger plugin interface, which is based on Go's standard log/slog.Handler interface. This allows any slog.Handler implementation to be used as a logger plugin. Loggers can be configured via the server.logger_plugin configuration option and used for both runtime logging and decision logs. OPA includes a built-in file logger plugin (file_logger) that writes structured JSON logs with rotation support using lumberjack. Users can also implement and register custom logger plugins when building OPA.

Example configuration for server logging:

server:
  logger_plugin: file_logger
plugins:
file_logger:
path: /var/log/opa/server.log
max_size_mb: 100
max_age_days: 28
max_backups: 3
compress: true
level: info

Example configuration for decision logs using the same plugin:

server:
  logger_plugin: file_logger
decision_logs:
plugin: file_logger
plugins:
file_logger:
path: /var/log/opa/server.log
max_size_mb: 100
max_age_days: 28
max_backups: 3
compress: true
level: info

Custom HTTPAuthPlugin behavior change (#8376) (authored by @​srenatus)

... (truncated)

Changelog

Sourced from github.com/open-policy-agent/opa's changelog.

1.15.0

This release contains a mix of new features, performance improvements, and bugfixes. Notably:

• Add logger plugin interface and file logger implementation with log rotation
• Custom HTTPAuthPlugin behavior change, all per-request authentication logic must be moved from NewClient() to Prepare()
• AWS signing supports for web identity for assume role credentials

Logger Plugin Support (#8434) (authored by @​srenatus)

OPA now supports pluggable logging implementations via the logger plugin interface, which is based on Go's standard log/slog.Handler interface. This allows any slog.Handler implementation to be used as a logger plugin. Loggers can be configured via the server.logger_plugin configuration option and used for both runtime logging and decision logs. OPA includes a built-in file logger plugin (file_logger) that writes structured JSON logs with rotation support using lumberjack. Users can also implement and register custom logger plugins when building OPA.

Example configuration for server logging:

server:
  logger_plugin: file_logger
plugins:
file_logger:
path: /var/log/opa/server.log
max_size_mb: 100
max_age_days: 28
max_backups: 3
compress: true
level: info

Example configuration for decision logs using the same plugin:

server:
  logger_plugin: file_logger
decision_logs:
plugin: file_logger
plugins:
file_logger:
path: /var/log/opa/server.log
max_size_mb: 100
max_age_days: 28
max_backups: 3
compress: true
level: info

Custom HTTPAuthPlugin behavior change (#8376) (authored by @​srenatus)

... (truncated)

Commits

• f9e7302 Prepare v1.15.0 release (#8446)
• d0041c6 runtime+server: logger plugins (#8434)
• 8954525 build(deps): bump picomatch from 2.3.1 to 2.3.2 in /docs (#8443)
• 39a4c0e optimized bundles: filter metadata comments properly (#8388)
• 9fd6f93 build(deps): bump the gha-dependencies group with 5 updates (#8440)
• 01814e9 docs: Update KubeCon event listing (#8439)
• 857457b build(deps): bump google.golang.org/grpc from 1.79.1 to 1.79.3 in /e2e
• 908ac78 build(deps): bump flatted from 3.4.1 to 3.4.2 in /docs
• 2605e2c docs: fix input of partial-evaluation example (#8430)
• 09526f6 build(deps): bump google.golang.org/grpc from 1.79.1 to 1.79.3 (#8428)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)